How to supply OpenSSL generated Private & Public Keys to iOS & Android apps?For my purposes I always suggest and try to use something that is accepted, and verified to be correct. By using the full format you are sure the security is done correctly because it has been created and verified by smarter people than myself. I suggest you do not try to come up with your own solution for exchanging and signing keys. The web services can indeed verify the apps using this method, have a look into client certificates in your server language for more details. Unfortunately IMO the openssl library/app sucks (from a usability view), but it will suit your purposes.